Appl. No. 10/668,867 
Amdt. dated May 30, 2 0 07 

Reply to Office Action of March 7, 2007 

Amendments to the Specification; 

Please replace [0002] paragraph, with the following 
rewritten paragraph [0002] : 

[0002] This application is related to the following: 

U.S. Patent Application Serial No . 10/669 , 160 , 
filed September ^-922 , 2003, in the name of inventor 
Eduard K. de Jong, entitled "Controlled Delivery of 
Digital Content in a System for Digital Content Access 
Control" , Attorney Docket No. — GUN P8727, — commonly- 
assigned herewith; 

U.S. Patent Application Serial No. 10/014,893, 
filed October 29, 2 001, in the name of inventors 
Eduard K. de Jong, Moshe Levy and Albert Leung, 
entitled "User Access Control to Distributed Resources 
on a Data Communications Network" , Attorney Docket No. 
SUN P6 992, commonly assigned herewith; 

U.S. Patent Application Serial No. 10/040,270, 
filed October 29, 2001, in the name of inventors 
Eduard K. de Jong, Moshe Levy and Albert Leung, 
entitled "Enhanced Privacy Protection in 
Identification in a Data Communications Network" , 
Attorney Docket No. — SUN P6990, commonly assigned 
herewith; 

U.S. Patent Application Serial No. 10/014,823, 
filed October 29, 2001, in the name of inventors 
Eduard K. de Jong, Moshe Levy and Albert Leung, 
entitled "Enhanced Quality of Identification in a Data 
Communications Network" , now U.S. Patent No. 
7,085,840, issued August 1, 2006, Attorney Docket No. 
SUN P6991, — commonly assigned herewith; 

U.S. Patent Application Serial No. 10/014,934, 
filed October 29, 2001, in the name of inventors 
Eduard K. de Jong, Moshe Levy and Albert Leung, 
entitled "Portability and Privacy with Data 
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Communications Network Browsing" , Attorney Docket No. 
CUT 1 J P70 07, commonly assigned herewith; 

U.S. Patent Application Serial No. 10/033,373, 
filed October 29, 2001, in the name of inventors 
Eduard K. de Jong, Moshe Levy and Albert Leung, 
entitled "Managing Identification in a Data 
Communications Network" , Attorney Docket No. — SUN 
P7014 , — commonly assigned herewith; 

U.S. Patent Application Serial No. 10/040,293, 
filed October 29, 2001^ in the name of inventors 
Eduard K. de Jong, Moshe Levy and Albert Leung, 
entitled "Privacy and Identification in a Data 
Communications Network", Attorney Docket No. — SUN 
P7015 , — commonly assigned herewith; 

U.S. Patent Application Serial No. 10/687,415 
filed October 15, 2003, in the name of inventor Eduard 
K. de Jong, entitled "Rights Locker For Digital 
Content Access Control", Attorney Docket No. — SUN 
P 8 726 , — commonly assigned. herewith; 

U.S. Patent Application Serial No. 10/687,217, 
filed October 15, 2003 in the name of inventor Eduard 
K. de Jong, entitled "Accessing In A Rights Locker 
System for Digital Content Access Control", Attorney 
Docket No. — SUN 010202, — commonly assigned herewith; 

U.S. Patent Application Serial No. 10/687,459, 
filed October 15, 2003 in the name of inventor Eduard 
K. de Jong, entitled "Embedded Content Requests in a 
Rights Locker System for Digital Content Access 
Control" , Attorney Docket No. — SUN 040203, — commonly 
assigned herewith; and 

U.S. Patent Application Serial No. 10/687,488, 
filed October 15, 2003 in the name of inventor Eduard 
K. de Jong, entitled "Rights Maintenance in a Rights 
Locker System for Digital Content Access Control", 
Attorney Docket No. — SUN 0 4 0204, — commonly assigned 
herewith . 
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Please replace [0011] paragraph, with the following 
rewritten paragraph [0011] : 

[0011] A user desiring access to digital content 155- 
170 stored by a digital content producer 105-120 uses 
a mobile phone 125-140 to issue an access request to a 
particular digital content producer 105-120. The 
digital content producer 105- 120 195 authenticates the 
user making the request. The authentication typically 
includes prompting the user for a username and a 
password if the username and password is not included 
with the initial access request. Upon successful user 
authentication, the digital content producer 105-120 
may grant access to the digital content 155-170. 
Alternatively, the digital content producer 105-120 
may issue a token that may be presented at a later 
time and redeemed in exchange for access to the 
digital content . 

Please replace paragraph [0021] with the following 
rewritten paragraph [0021] : 

[0021] In the context of the present invention, the 
term "network" includes local area networks, wide area 
networks, the Internet, cable television systems, 
telephone systems, wireless telecommunications 
systems, fiber optic networks, Asynchronous Transfer 
Mode (A TM) networks, frame relay networks, satellite 
communications systems, and the like. Such networks 
are well known in the art and consequently are not 
further described here. 
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Please replace paragraph [0068] with the following 
rewritten paragraph [0068] : 

[0068] Turning now to FIG. 15, a block diagram that 

illustrates a system for digital content access 
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control where a secure user device activates 
deactivated tokens issued by a content provisioner and 
uses the activated tokens to access digital content 
stored by a content repository in accordance with one 
embodiment of the present invention is presented. 
System 1500 comprises a content provisioner 1505, a 
content repository 1515, a user device 1565 and a 
synchronizer 1520 in communication via network 1560. 
Content provisioner 1505 comprises a token issuer 1535 
and content repository 1515 comprises a token acceptor 
1540. User device 1565 comprises storage for 
deactivated tokens (1570) . User device 1565 also 
comprises a secure user device 4rS0 ^1510 that comprises 
a co-issuer 1525. The co-issuer 1525 comprises a 
secret 1530 for activating deactivated tokens. 

Please replace paragraph [0069] with the following 
rewritten paragraph [0069] : 
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[0069] In operation, user device 1565 communicates 
with content provisioner 1505 to obtain one or more 
deactivated tokens and stores them in deactivated 
token storage 1570. The one or more deactivated 
tokens 1545 are tied to particular digital content. 
Co-issuer 1525 activates the one or more deactivated 
tokens 1545 based at least in part on secret 1530. 
Secure user device -3^5-0-5- 1510 presents one or more 
activated tokens 1550 to content repository 1515 to 
receive access to the digital content associated with 
the one or more activated tokens 1550. Content 
repository 1515 presents synchronizer 1555 with 
accepted tokens 1555. The synchronizer 1520 may 
recycle the previously accepted tokens 1555 to make 
them available for future token allocations. 
Synchronizer 1520 may also facilitate payment for 
delivery of digital content and receive payment in 
return for the accepted tokens. Synchronizer 1520 
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presents tokens to be recycled 1575 to content 
provisioner 1505 for subsequent reuse. 

Please replace paragraph [0070] with the following 
rewritten paragraph [0070] : 

[0070] According to one embodiment of the present 
invention, user device 1565 comprises a mobile phone 
and secure user device 1505 1510 comprises a SIM card 
or the like. 

Please replace paragraph [0071] with the following 
rewritten paragraph [0071] : 

[0071] According to one embodiment of the present 
invention, co-issuer 1525 activates one or more 
deactivated tokens 154 5 upon receipt by secure user 
device 1505 1510 and stores the activated tokens in 
secure user device 1505 1510 until the activated tokens 
are redeemed for access to digital content associated 
with the tokens. According to another embodiment, of 
the present invention, secure user device 1505 1510 
stores one or more deactivated tokens until access to 
digital content associated with the deactivated tokens 
is desired. At that point, co-issuer 1525 activates 
the deactivated tokens and presents the activated 
tokens 1550 to content repository 1515 for access to 
digital content associated with the activated tokens. 



Please replace paragraph [0072] with the following 
rewritten paragraph [0072] : 
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[0072] Turning now to FIG. 16, a block diagram that 

illustrates a system for digital content access 
control where a secure user device activates 
deactivated tokens issued by a content provisioner and 



Page 6 of 3 0 



Appl. No. 10/668,867 
Amdt. dated May 30, 2 007 

Reply to Office Action of March 7, 2007 



uses the activated tokens to access digital content 
stored by a content repository in accordance with one 
embodiment of the present invention is presented. 
Figure 16 is similar to FIG. 15 except that secure 
user device 1605 1610 in FIG. 16 comprises deactivated 
token storage 1670. In operation, user device 1665 
communicates with content provisioner 1605 to obtain 
one or more deactivated tokens and stores them in 
deactivated token storage 1670. The one or more 
deactivated tokens 1645 are tied to particular digital 
content. Co-issuer 1625 activates the one or more 
deactivated tokens 1645 based at least in part on 
secret 1630. Secure user device 1605 1610 presents one 
or more activated tokens 1650 to content repository 
1615 to receive access to the digital content 
associated with the one or more activated tokens 1650. 

Content repository 1615 presents synchronizer 1620 
with accepted tokens 1655. The synchronizer 1620 may 
recycle the previously accepted tokens 1655 to make 
them available for future token allocations. 
Synchronizer 1620 may also facilitate payment for 
delivery of digital content and receive payment in 
return for the accepted tokens. Synchronizer 162 0 
presents tokens to be recycled 1675 to content 
provisioner 1605 for subsequent reuse. 
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